17 lines
756 B
JSON
17 lines
756 B
JSON
{
|
|
"id": "stellaops.secrets.database-connection-string",
|
|
"version": "1.0.0",
|
|
"name": "Database Connection String with Credentials",
|
|
"description": "Detects database connection strings containing embedded credentials",
|
|
"type": "regex",
|
|
"pattern": "(?i)(?:postgres|mysql|mongodb|sqlserver|mssql)://[^:]+:[^@]+@[^/]+",
|
|
"severity": "critical",
|
|
"confidence": "high",
|
|
"keywords": ["postgres://", "mysql://", "mongodb://", "sqlserver://", "connection"],
|
|
"filePatterns": ["*.yml", "*.yaml", "*.json", "*.env", "*.properties", "*.config", "appsettings.json", "*.xml"],
|
|
"enabled": true,
|
|
"allowlistPatterns": ["localhost", "127\\.0\\.0\\.1", "\\$\\{", "\\{\\{"],
|
|
"tags": ["database", "credentials", "connection-string"],
|
|
"references": []
|
|
}
|